The one page for all your legal needs. Discover our terms and conditions, policies and other relevant legal documentation.
Version 3.2.8, 2023-09-07
Your privacy is important, both for you and for us. We will do our very best to ensure that the data you let us process is handled in a secure way, with your integrity in focus. This privacy policy describes what data we collect, how and why we use it and where you can find out more.
Any capitalized words used but not defined herein, shall have the same meaning ascribed to them in the terms and conditions available at Terms.
What data we collect depends on how you interact with us and, based on the main ways to interact with us, “you” are most likely:
Depending on who you are, we collect:
You (unless you are a Team Member in which case your organization as our Customer) are liable for personal data included in information submitted by you to a Menti in your use of the Application (e.g. the documents, text, and pictures submitted electronically), including also personal data provided by Audience in their interaction with your Menti(s). Mentimeter will only store such personal data to the extent provided and as a result of your use of the Application.
| We may process: | with the purpose to: | and the legal basis being: |
|---|---|---|
| Contacts, Device Information | set up your Account with your identifying information and sometimes to verify your identity | contractual obligations |
| Contacts, Device Information, Third Party Information | communicate with you and/or provide you support through chat and email | contractual obligations |
| Contacts and Device Information | send you invoices | contractual obligations |
| Contacts, Device Information, Interaction Information, Third Party Information and Cookie Information | conduct monitoring and incident / issue tracking, such as to troubleshoot the Services, detect errors and other issues | contractual obligations |
| Contacts, Device Information and Interaction Information | detect multi-use, fraudulent behavior and other acts in violation of the Terms | contractual obligations |
| Contacts, Device Information and Cookie Information | provide appropriate security measures | contractual obligations |
| Contacts, Device Information, Additional Information and Interaction Information | conduct research and service improvements through, for example, A/B testing, data analytics and other types of testing / optimization exercises | legitimate interest |
| Third Party Information | conduct marketing activities | legitimate interest |
| Contacts | conduct sales and marketing - when you have signed up with an email address that belongs to an organization, we may disclose your email address to that organization as a part of our marketing & sales towards potential or existing Customers (see “Customer access” for more information) | legitimate interest - if you would like to avoid this type of disclosure you should register an Account with your own personal email address |
| Contacts | conduct direct marketing via email | your consent |
| Contacts | enable and provide collaboration features within the Services | contractual obligations |
| Cookie Information | conduct marketing activities and provide appropriate security measures, as examples, please read our full Cookie Policy for more information | legitimate interest and your consent |
| Additional Information | communicate with you | legitimate interest and your consent |
| Additional Information | enable you to administer and modify your Account | legitimate interest and your consent |
| We may process: | with the purpose to: | and the legal basis being: |
|---|---|---|
| Contacts | set up a Team Workspace that you can administer and enable other for Team Member(s) to contact you | contractual obligations |
| We may process: | with the purpose to: | and the legal basis being: |
|---|---|---|
| Contacts and Additional Information | communicate with you and provide support | legitimate interest and/or your consent |
| Contacts and Device Information | send you invoices | legitimate interest |
| Contacts | maintain a good record keeping in the day-to-day business activities | legitimate interest |
| Contacts | conduct direct marketing via email | with your consent |
| Cookie Information | conduct marketing activities and provide appropriate security measures, as examples, please read our full Cookie Policy for more information | legitimate interest and your consent |
| Call Recordings | educate internally | with your consent |
| We may process: | with the purpose to: | and the legal basis being: |
|---|---|---|
| Device Information | enable for you to vote/add replies to surveys and presentations and prevent abuse | contractual obligations |
| Contacts (email address) | enable for a User to send you the survey or presentation you have interacted with, which is optional | contractual obligations |
| Contacts (email address) | conduct direct marketing via email (if you have provided us your email address to receive a survey or presentation which is optional) | your consent |
| Cookie Information | conduct marketing activities and provide appropriate security measures, as examples, please read our full Cookie Policy for more information | legitimate interest and your consent |
| We may process: | with the purpose to: | and the legal basis being: |
|---|---|---|
| Contacts and Additional Information | host webinars, surveys and focus groups (as examples) | your consent |
| Third-Party Information | conduct marketing activities | legitimate interest |
| Contacts and Device Information | send you invoices (if you have requested an invoice on behalf of another person) | legitimate interest |
| Contacts (email address) | with the purpose to communicate, for example to send company data such as company reports, press releases and other company news | legitimate interest |
| Contacts (email address), Device Information, Interaction Information and Cookie Information | conduct research and service improvements through, for example, A/B testing, data analytics and other types of testing / optimization exercises | legitimate interest |
| Cookie Information | conduct marketing activities and provide appropriate security measures, as examples, please read our full Cookie Policy for more information | legitimate interest and your consent |
We use Paypal (Braintree) and Stripe which are both level 1 PCI compliant third-party vendors to process credit card payments and together with Stripe we use PE Accounting for invoicing. We never store or process any payment-related data other than as described herein. We may collect some limited information, such as your email address and transaction history. In addition, when processing your payment Stripe and PayPal provides us with limited information related to you, such as a unique token that enables you to make additional purchases using the information they’ve stored, your type of card, expiry date, and last four digits as well as IP address and VAT number, where applicable. If you choose to pay by invoice, we may need to collect and transfer additional information, like your company name, registration number, and phone number, to Stripe and PE Accounting to enable credit checks and send you invoices. Paypal and Stripe are controller and responsible for the personal data that they themselves collect. The use of your data by Stripe and PE Accounting is subject to their own privacy policies and we have data processing agreements with Paypal, Stripe, and PE Accounting in place.
From time to time, we may offer you the chance to participate in webinars, sweepstakes, contests and surveys which may be governed by the Terms and this Privacy Policy or, if explicitly stated, by a specific separate privacy policy with specific terms. We may ask you to be part of surveys, regarding for example customer satisfaction, and with your consent give us feedback in relation to for example support matters or when we test new stuff for improvement purposes and sometimes this may include processing of personal data of you as the respondent. If you choose to participate, we may ask you for certain personal data in addition to what is stated in this Privacy Policy.
We may also cooperate with third parties to, for example, host webinars, provide login functionality or provide a combination of our respective services via plug-ins, APIs or to enable integrations in third party services. In the event you choose to use such third-party functionality, services or integration, that third party may be an independent or joint controller together with us for the collection and processing of your personal data in connection therewith. We will process your personal data in accordance with this Privacy Policy and the relevant third parties terms and conditions and/or policies apply to their services and their processing of your personal data. We recommend that you get to know them before you use any functionality or services provided by a third party. They are responsible for the personal data they collect when providing you with their functionality or services.
You can at any time delete your Surveys and results when you are logged into our Application. If you are a Free User or single account User, you can delete your entire Account through the use of the delete account function also available in a logged-in state. You may also always delete your entire Account on request by email to hello@mentimeter.com. We will comply with your request promptly and at the latest within 30 days. If you are part of a Team Workspace as a Team Member, contact the Administrator if you wish to deactivate your Account and if you wish to request the removal of your personal data, we will help you, but request our assistance via the Administrator of the Team Workspace.
If you are a member of the Audience and voluntarily submit your email address to receive a presentation or survey, your email address will be deleted after 12 months (unless you are converted into a User).
HTTP requests and IP addresses that originate from an Audience member are logged and stored with a set retention period. We do not actively create any association or store this data for any other purpose than monitoring and security-related activities.
How long we store personal data that we may receive in relation to the third party integrations depends on the type of data and the purpose for which we process it, but will only be retained for the period necessary to fulfill the purposes of the specific integration unless a longer retention period is required or permitted by law.
We store personal data as long as needed for the purpose described in this Privacy Policy but please note that we may store personal data for a longer period of time if needed to fulfill legal requirements.
Notifications. If you have subscribed to be notified of changes to our Terms and Policies we will use your email address to communicate with you.
Customer access. If you use an email address to access the Services and that email address was provided by an organization, such as an employer or school, that organization can request information about your Account as well as, if that organization is a Customer, request us to move your Account to that organization’s Team Workspace in which case you will become a Team Member. The organization may then apply its own policies to your use of the Services and control, administer, suspend and delete access to, as well as downgrade your Account. Please see the Terms for more information on what happens when you use an email address provided by an organization to access the Services. If you would like to be sure to avoid this type of disclosure you should register an Account with your own private email address.
During a change to Mentimeter’s business. If Mentimeter engages in, for example, a merger, acquisition, bankruptcy, dissolution, reorganization, sale of some or all of Mentimeter’s assets or stock, financing or similar transactions or proceedings, or steps in contemplation of such activities (e.g. due diligence), some or all your personal data may be shared or transferred, subject to standard confidentiality arrangements.
Aggregated or de-identified data. We may disclose or use aggregated or de-identified data for any type of business-related purpose such as with prospects, partners for business or research purposes.
To enforce our rights, prevent fraud, and for safety. We reserve the right to disclose all kinds of data to protect and defend the rights, property or safety of Mentimeter or third parties, including enforcing contracts or policies, or in connection with investigating and preventing fraud or security issues.
To comply with laws. If we receive a request for information, we may disclose all kinds of data, if this is required by mandatory applicable laws, governmental regulations or rules or by any order of court of competent jurisdiction, arbitral tribunal or governmental authority.
With consent. We may share personal data and other data with third parties when we have consent to do so.
We engage third-party companies or individuals as service providers or business partners to process your Account to support our business. These third parties are our processors and may, for example, provide and help us with computing and storage services. Please see our entire list of processors. From time to time, we may remove or engage new processors and when we do Mentimeter will ensure via a written contract that the processor may access and use your data only to deliver the services Mentimeter has retained them to provide and is prohibited from using such data for any other purpose. Mentimeter will ensure that processors are bound by written agreements that require them to provide at least the level of data protection required of Mentimeter.
Mentimeter offers multi-regional hosting. By default, customer data at rest is hosted in the EU. We may transfer limited data to countries outside of the EU/EEA. Such transfers are either conducted under the provisions of the European Commission’s Standard Contractual Clauses as of 4 June 2021 or in accordance with a European Commission's adequacy decision. A full list of the service providers that process our users’ data, along with details of their location, is available here. Our users' privacy is of utmost importance to us, and we do everything we can to ensure that all our sub-processors have implemented appropriate safeguards to protect the personal data they process on our behalf by for example having contractual obligations in place for them to process such data in compliance with applicable data protection laws.
Importantly, we only use processors to the extent necessary to enable us to provide the best services possible, and we never have and will never sell any personal data to third parties.
We will get back to you promptly and at the latest within 30 days after receipt of your request, but please note that Mentimeter may be required by law to keep some personal data despite your request.
In cases where we process your personal data based on your consent or explicit consent, you can at any time revoke this consent, which you do by unsubscribing to emails we send you or by contacting us at hello@mentimeter.com (please see our Cookie Policy if you want to revoke consent to cookies). Revoking consent for the purpose of direct marketing via email will not lead to any detriment for you, as we do not require this type of information to provide our Services, but if you revoke your consent in relation to other matters, exercise your right to erasure or restrict our processing of your personal data in any other way, our Services can no longer be provided.
The Services are addressed to organizations and individuals being sixteen years of age or older. By registering an Account, you warrant and represent that you have that legal age as further described in the Terms.
Furthermore, our Services are not directed to children under the age of 13 years or to children whose age makes it unlawful to process their personal data or requires parental consent under applicable laws. Accordingly, we do not intend to collect personal data from anyone we know to be under this age limit. If we learn that we have collected personal data of a child under the age of 13 years we will take reasonable steps to delete such personal data as quickly as possible. If you are the parent or legal guardian of a child under the aforementioned age limit and become aware that the child has provided personal data to us, please contact us by emailing hello@mentimeter.com.
Mentimeter operates in accordance with the GÉANT code of conduct. More information can be found at GÉANT Data Protection Code of Conduct.
Mentimeter AB (publ) is a Swedish limited liability company with registration number 556892-5506 and registered address is Tulegatan 11, 113 86, Stockholm, Sweden. You can always reach us at privacy@mentimeter.com.
This Privacy Policy is not part of the Terms and we may change this Privacy Policy from time to time. Laws, regulations and industry standards evolve, which may make those changes necessary, or we may make changes to our business. We will post the changes to this page and encourage you to review our Privacy Policy to stay informed. If we make changes that materially alter your privacy rights, we will provide additional notice through the Services or via email if you have subscribed for notifications in Policies. If you disagree with the changes to this Privacy Policy, you should delete your Account.
Al enviar, aceptas nuestros términos de uso y políticas